{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T14:03:36.858","vulnerabilities":[{"cve":{"id":"CVE-2021-0248","sourceIdentifier":"sirt@juniper.net","published":"2021-04-22T20:15:09.257","lastModified":"2024-11-21T05:42:18.653","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"This issue is not applicable to NFX NextGen Software. On NFX Series devices the use of Hard-coded Credentials in Juniper Networks Junos OS allows an attacker to take over any instance of an NFX deployment. This issue is only exploitable through administrative interfaces. This issue affects: Juniper Networks Junos OS versions prior to 19.1R1 on NFX Series. No other platforms besides NFX Series devices are affected."},{"lang":"es","value":"Este problema no es aplicable al Software NFX NextGen. En los dispositivos de la Serie NFX, el uso de credenciales Embebidas en Juniper Networks Junos OS, permite a un atacante tomar el control de cualquier instancia de una implementación de NFX. Este problema solo es explotable por medio de interfaces administrativas. Este problema afecta a: Juniper Networks Junos OS versiones anteriores a 19.1R1 en la serie NFX. No están afectadas otras plataformas además de los dispositivos de la serie NFX"}],"metrics":{"cvssMetricV31":[{"source":"sirt@juniper.net","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"sirt@juniper.net","type":"Secondary","description":[{"lang":"en","value":"CWE-798"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-798"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:*:*:*:*:*:*:*:*","versionEndExcluding":"19.1","matchCriteriaId":"E46B49AE-2783-4962-9919-A0E1DDFCE4C9"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:19.1:-:*:*:*:*:*:*","matchCriteriaId":"768C0EB7-8456-4BF4-8598-3401A54D21DA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:juniper:nfx150:-:*:*:*:*:*:*:*","matchCriteriaId":"D9AE81FA-B0F3-4F0B-A2D1-2BB590345058"},{"vulnerable":false,"criteria":"cpe:2.3:h:juniper:nfx250:-:*:*:*:*:*:*:*","matchCriteriaId":"7EB08A27-7777-4538-ADC4-9D2F89963C13"},{"vulnerable":false,"criteria":"cpe:2.3:h:juniper:nfx350:-:*:*:*:*:*:*:*","matchCriteriaId":"6CB56048-A486-4A46-B438-CC3084BD9CB6"}]}]}],"references":[{"url":"https://kb.juniper.net/JSA11141","source":"sirt@juniper.net","tags":["Vendor Advisory"]},{"url":"https://kb.juniper.net/JSA11141","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}